Privacy Policy

Effective 1st February 2020

essensys plc and essensys Inc, (“we“, “us”, “our”) are committed to protecting and respecting your privacy.

This privacy policy (“Privacy Policy”) together with our EUP and any other documents referred to therein, sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By visiting any websites, applications or products operated by us, (“Sites”) you are accepting and consenting to the practices described in this Privacy Policy.

For the purpose of the Data Protection Act 1998 (“Act”) and the General Data Protection Regulation (EU) 2016/679, the data controller is essensys Limited located at Aldgate Tower, 2 Leman Street, London E1 8FA, England and essensys Inc, located at 450 7th Avenue, Suite 2407, New York, 10123, United States of America.

INFORMATION WE MAY COLLECT FROM YOU

We may collect and process the following data about you:

Information you give us. You may give us information about you by filling in forms on our Sites or by corresponding with us by phone, e-mail or otherwise. This includes information you provide when you register to use our Sites, apps, subscribe to our service, search for a product, company, location or user, place an order on our Sites, participate in discussion boards or other social media functions on our Sites, enter a competition, promotion or survey, enter profile information on our Sites, register with or link to a third party account such as LinkedIn, Facebook or Google and when you report a problem with our Sites. The information you give us may include your name, address, e-mail address and phone number, financial and credit card information, personal description and photograph, company name, skills, interests, occupation, job title, links to your accounts with third party applications such as LinkedIn, Facebook and Google.

Information we collect about you. With regard to each of your visits to our Sites we may automatically collect the following information:

  • technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system, platform and device type;
  • information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our Sites (including date and time); products you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page and any phone number used to call our customer service number. We also use applications which take anonymised recordings of user sessions.

Information we receive from other sources. We may receive information about you if you use any of the other websites we operate or the other services we provide. In this case we will have informed you when we collected that data that it may be shared internally and combined with data collected on our Sites. We are also working closely with third parties (including, for example, business partners, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, search information providers, credit reference agencies) and may receive information about you from them.

If you registered through LinkedIn, we collect basic profile information (outlined here https://developer.linkedin.com/docs/fields/basic-profile). If you registered through Facebook, we collect basic profile information (including first name, last name, profile picture, gender, age range and access to your list of friends that also use our app or email address). If you registered with Google we collect first name, last name and profile image.

COOKIES

We use cookies on our Sites to distinguish you from other users of our Sites. This helps us to provide you with a good experience when you browse our Sites and also allows us to improve the Sites. Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the websites.

We use persistent cookies and session cookies on our Sites. We use persistent cookies to save your login information for future logins to the Sites. We use session cookies to enable certain features of the Sites, to better understand how you interact with the Sites and to monitor aggregate usage by users and web traffic routing on the Sites. Unlike persistent cookies, session cookies are deleted from your computer when you log off from the Sites and then close your browser.

The table below explains the cookies we use and why we use each of them.

CookiePurpose
Google AnalyticsThese cookies are used to collect information about how visitors use our Sites. We use the information to compile reports and to help us improve the Sites. The cookies collect information in an anonymous form, including the number of visitors to the Sites, where visitors have come to the Sites from and the pages they visited.
YouTubeWe embed videos from our official YouTube channel using YouTube’s privacy-enhanced mode. This mode may set cookies on your computer once you click on the YouTube video player, but YouTube will not store personally-identifiable cookie information for playbacks of embedded videos using the privacy-enhanced mode.
HotJarWe use Hotjar to anonymously track and record sessions. These sessions are not associated with any specific user. Hotjar cookies are stored in your browser and will expire automatically after 365 days. If cookies are disabled, Hotjar does not track or record visits.
AsknicelyAsknicely is a Net Promoter Scoring platform which provides our customers a channel to give feedback in order to help improve their experience through our product and services.
IntercomWe use Intercom to anonymously track sessions. These sessions are not associated with any specific user. Intercom cookies will expire after one week. The cookies collect information including the number of visitors to the Sites, the pages the visited, and what features they have interacted with on the Sites.
Site PerformanceWe use site performance cookies to remember preferences you may have set on our Sites.
Anonymous analyticsWe use analytics cookies to tell us whether you have visited the Site previously, and to gather statistics about visits to a page.
GeotargettingThese cookies are used by software which tries to work out what country you are in from information supplied by your browser when it requests a web page. This cookie is completely anonymous and is only used to help target content.
RegistrationWhen you sign in, we generate cookies that let us know whether you are signed in or not. Our servers use these cookies to work out which account you are signed in with.
TriblioThese cookies are used by software for targeted advertising purposes.

You can set up your browser options, to stop your computer accepting cookies or to prompt you before accepting a cookie from the websites you visit. If you do not accept cookies, however, you may not be able to use the whole of the Sites or all functionality of the services.

To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.aboutcookies.org or www.allaboutcookies.org. To opt out of being tracked by Google Analytics across all websites visit http://tools.google.com/dlpage/gaoptout.

USES MADE OF THE INFORMATION

We use information held about you in the following ways:

Information you give to us. We will use this information:

to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us;

to provide you with information about other goods and services we offer that are similar to those that you have already purchased or enquired about;

to provide you, or permit selected third parties to provide you, with information about goods or services we feel may interest you. If you are an existing customer, we will only contact you by electronic means (e-mail or SMS) with information about goods and services similar to those which were the subject of a previous sale or negotiations of a sale to you. If you are a new customer, and where we permit selected third parties to use your data, we (or they) will contact you by electronic means only if you have consented to this. If you do not want us to use your data in this way, or to pass your details on to third parties for marketing purposes, please tick the relevant box situated on the form on which we collect your data;

to notify you about changes to our service;

to ensure that content from our Sites is presented in the most effective manner for you and for your computer.

Information we collect about you. We will use this information:

to administer our Sites and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;

to improve our Sites to ensure that content is presented in the most effective manner for you and for your computer;

to allow you to participate in interactive features of our service, when you choose to do so;

as part of our efforts to keep our Sites safe and secure;

to measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you;

to make suggestions and recommendations to you and other users of our Sites about goods or services that may interest you or them.

Information we receive from other sources. We may combine this information with information you give to us and information we collect about you. We may us this information and the combined information for the purposes set out above (depending on the types of information we receive).

DISCLOSURE OF YOUR INFORMATION

We may share your personal information with any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.

Data subjects have the right to opt out of (a) disclosures of their Personal Data to third parties not identified at the time of collection or subsequently authorized, and (b) uses of Personal Data for purposes materially different from those disclosed at the time of collection or subsequently authorized.

Information we share with third parties. We may share your information with selected third parties including:

  • Business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you.
  • Advertisers and advertising networks that require the data to select and serve relevant adverts to you and others. We do not disclose information about identifiable individuals to our advertisers, but we may provide them with aggregate information about our users (for example, we may inform them that 250 women aged over 25 have clicked on their advertisement on any given day). We may also use such aggregate information to help advertisers reach the kind of audience they want to target (for example, men living in London). We may make use of the personal data we have collected from you to enable us to comply with our advertisers’ wishes by displaying their advertisement to that target audience.
  • Analytics and search engine providers that assist us in the improvement and optimisation of our Sites.
  • Credit reference agencies for the purpose of assessing your credit score where this is a condition of us entering into a contract with you.

Personal information we disclose to third parties. We may disclose your personal information to third parties:

  • In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
  • If essensys Limited or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
  • If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our EUP and/or any other agreements; or to protect our rights, property, safety, our customers or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
WHERE WE STORE YOUR PERSONAL DATA

The personal data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (“EEA“). It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. Such staff maybe engaged in, among other things, the fulfilment of your order, the processing of your payment details or the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing outside of the EEA. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.

All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using SSL/TLS technology. Where we have given you (or where you have chosen) a password which enables you to access certain parts of the Sites, you are responsible for keeping this password confidential. We ask you not to share any password with anyone.

Unfortunately, the transmission of information via the Internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Sites; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

YOUR RIGHTS

You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at the address given at the end of this Privacy Policy.

Our Sites may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.

ACCESS TO INFORMATION

The Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act. We’ll usually share this with you within 30 days of you asking us for it.

AGE OF USERS

Our Sites are not intended for and shall not be used by anyone under the age of 18.

EU-US Privacy Shield

Essensys Inc participates in and has certified its compliance with the EU-US Privacy Shield frameworks as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States, respectively. essensys is committed to subjecting all personal data received from European Union (EU) member countries and Switzerland, in reliance on the Privacy Shield Frameworks, to the Framework’s applicable Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program and to view our certification, please visit U.S Department of Commerce’s Privacy shield List.

With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, essensys Inc. is subject to the regulatory and enforcement powers of the U.S. Federal Trade Commission. We may use third-party service providers to assist us in providing services to our customers. We are liable for ensuring that the third-parties we engage support our Privacy Shield commitments. In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Pursuant to the Privacy Shield Frameworks, EU individuals have the right to obtain our confirmation of whether we maintain personal information relating to you in the United States.  Upon request, we will provide you with access to the personal information that we hold about you.  You may also may correct, amend, or delete the personal information we hold about you.  An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States under Privacy Shield, should direct their query to privacy@essensys.tech.  If requested to remove data, we will respond within a reasonable timeframe.

We will provide an individual opt-out choice, or opt-in for sensitive data, before we share your data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized.  To request to limit the use and disclosure of your personal information, please submit a written request to privacy@essensys.tech.

In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

essensys Inc.’s accountability for personal data that it receives in the United States under the Privacy Shield and subsequently transfers to a third party is described in the Privacy Shield Principles. In particular, essensys Inc. remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process the personal data on its behalf do so in a manner inconsistent with the Principles, unless essensys Inc. proves that it is not responsible for the event giving rise to the damage.

In compliance with the Privacy Shield Principles, essensys Inc. commits to resolve complaints about your privacy and our collection or use of your personal information. European Union individuals with inquiries or complaints regarding this Privacy Statement should first contact essensys’ Privacy Administrator at:

essensys Inc,
450 7th Avenue,
Suite 2407,
New York, 10123
privacy@essensys.tech

essensys Inc. has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers for more information and to file a complaint. This service is provided free of charge to you.

If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms.  See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction.

California consumer legal rights

This section is effective as of January 1, 2020. The California Consumer Privacy Act (“CCPA”) provides California residents with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.

  • Right to access
  • Right to opt out of the sale of personal information
  • Right to data deletion of consumer’s personal information
  • Right to data portability
  • Right to not be discriminated against for exercising any consumer rights under the CCPA

To exercise the rights described above, please submit a verifiable consumer request to us by emailing us at privacy@essensys.tech

Only you, or someone legally authorized to act on your behalf (this includes an authorized agent), may make a verifiable consumer request (“request”) related to your personal information. You may only make a request for access or data portability twice within a 12-month period. An authorized agent making a request on your behalf must provide us with written authorization providing the agent with the ability to make a CCPA request signed by you. Additionally, you will need to verify your identity directly with us. Please note that this authorized agent requirement is not applicable when the authorized agent has a power of attorney. The request must: (1) provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative; and (2) describes your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

Any disclosures we provide will cover the 12-month period preceding receipt of the request. We will provide a response to a request within forty-five (45) days of its receipt. If we reasonably require an extension of time, we will notify you within the first forty-five (45) day period and such extension will not exceed an additional forty-five (45) days. We will not discriminate against you for exercising any of your CCPA rights. Any personal information provided to us for verification and fraud-prevention purposes will only be used for that purpose and such information will be deleted as soon as practical after processing of your request. We will not sell (as defined under the CCPA) California resident personal information we collect.

CHANGES TO OUR PRIVACY POLICY

Any changes we may make to our Privacy Policy in the future will be posted on www.essensys.tech/privacy-policy and where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our Privacy Policy. This Privacy Policy is effective 1st February 2020 and replaces any other Privacy Policy previously applicable from this date.

CONTACT

Questions, comments and requests regarding this Privacy Policy are welcomed.

If you work within the United States, the data controller you should contact is essensys Inc, with it’s registered office at 450 7th Avenue, Suite 2407, New York, 10123

If you live outside the United States, essensys Limited is responsible for your information. Our registered address is Aldgate Tower, 2 Leman Street, London E1 8FA, England

You can also contact our Data Protection Officer.

arrow-up